Added parameter to disallow creating of rooms with public access

[pboguslawski]

Added spreed application config parameter public_rooms_allowed to disallow
creating of rooms with public (guest via link) access (i.e. for internal
Nextcloud setups). Use

occ config:app:set spreed public_rooms_allowed --value 'yes'

to allow (default if not set) and

occ config:app:set spreed public_rooms_allowed --value 'no'

to disallow creating of rooms with public access.

Related: #521
Author-Change-Id: IB#1126215
Signed-off-by: Pawel Boguslawski pawel.boguslawski@ib.pl

[nickvergessen]

Not sure if we should simply convert it. Or just error with a 400 Bad Request and a message the clients can display.

[pboguslawski]

Conversion was choosen because spreed code ignores errors returned by modified functions and this seems to be safer. Conversion should never happen because function should be not available in UI also (and if bad guys will try to modify POST, will get group conversation which should not hurt regular users).

[nickvergessen]

That assumes all clients got updated in the meantime :)

[pboguslawski]

Sorry, we use web UI only - feel free to extend it for other required areas if necessary (not experienced enough in nc devel to propose it now).

[nickvergessen]

You can fix it with one step by moving it to RoomService::createConversation and throwing an exception or basically adjust this list here:

spreed/lib/Service/RoomService.php

Lines 141 to 147 in 2200896

	if (!\in_array($type, [
	Room::TYPE_GROUP,
	Room::TYPE_PUBLIC,
	Room::TYPE_CHANGELOG,
	], true)) {
	throw new InvalidArgumentException('type');
	}

[pboguslawski]

type is property of Room not RoomService so verification should take place in Room class to avoid future problems (i.e. code outside of RoomService will create/change room of disabled type). Seems that now Room::setType and Room constructor are the best places for this verification but code using it should properly handle errors when disabled type is passed. Please let me know if its possible to just throw exception in Room methods mentioned above without messing with room type conversions (there should not be any other trash left after such exception - not sure if it would be safe now).

[nickvergessen]

This is not correct. You want to do this change on the RoomService, not the model.
But see comment above.

[pboguslawski]

Modified places where choosen to avoid problems with lack of return errors handling. If you still recommend moving it elswhere - please suggest detailed change.

[nickvergessen]

As per above, you should do it only in the RoomService

[pboguslawski]

Don't see any mention of setType in RoomService and this method may be called so must verify room type also.

[nickvergessen]

We need to expose this to the mobile clients as a capability so they can also hide the features accordingly.

[pboguslawski]

This mod was created for web UI. Not experienced in nextcloud devel nor using mobile app so please suggest required changes if necessary.

[nickvergessen]

Basically add a line like this which in addition also checks your config:

spreed/lib/Capabilities.php

Line 151 in 91d3bd8

$capabilities['config']['conversations']['can-create'] = $user instanceof IUser && !$this->talkConfig->isNotAllowedToCreateConversations($user);

[pboguslawski]

Not experienced with capabilities in Nextcloud - please create change suggestion and will just accept it to this PR or make separate PR to adjust it.

[marcoambrosini]

tested and works 👌

[nickvergessen]

• Also RoomService::setType() should check the config.
• RoomController::addParticipantToRoom should not allow to add email addresses to a conversation (which also makes the room public)
• Since emails are then not allowed anymore, we should also not autocomplete them here:
  

  spreed/src/services/conversationsService.js

  Line 83 in d01450f

  shareTypes.push(SHARE.TYPE.EMAIL)

[nickvergessen]

You can fix it with one step by moving it to RoomService::createConversation and throwing an exception or basically adjust this list here:

spreed/lib/Service/RoomService.php

Lines 141 to 147 in 2200896

	if (!\in_array($type, [
	Room::TYPE_GROUP,
	Room::TYPE_PUBLIC,
	Room::TYPE_CHANGELOG,
	], true)) {
	throw new InvalidArgumentException('type');
	}

[nickvergessen]

As per above, you should do it only in the RoomService

[nickvergessen]

Basically add a line like this which in addition also checks your config:

spreed/lib/Capabilities.php

Line 151 in 91d3bd8

$capabilities['config']['conversations']['can-create'] = $user instanceof IUser && !$this->talkConfig->isNotAllowedToCreateConversations($user);

[pboguslawski]

• Also RoomService::setType() should check the config.

  • RoomController::addParticipantToRoom should not allow to add email addresses to a conversation (which also makes the room public)

  • Since emails are then not allowed anymore, we should also not autocomplete them here:
    

    spreed/src/services/conversationsService.js

    Line 83 in d01450f

    shareTypes.push(SHARE.TYPE.EMAIL)

Verification should be placed in Room class in all methods capable of setting/changing type (now constructor and setType probably) but code using Room must be prepared for errors/exceptions (not sure if already is) so please propose better solution than conversion proposed in this change (as suggestions or separate PR).

[pboguslawski]

4c645ce disables adding e-mails to room when public rooms are disabled.

[nickvergessen]

Sorry for the lack of responsiveness lately.
I still have your PR on my todo list and hopefully will reach it this week.

[nickvergessen]

Hi there, I copied your branch into our organisation and sent you an invite.
This allows us to better collaborate on the feature.

I rebased it on latest master and did some fixes and changes.
New pull request is here: #8357